diff options
author | Christian Grothoff <christian@grothoff.org> | 2024-07-31 12:49:03 +0200 |
---|---|---|
committer | Christian Grothoff <christian@grothoff.org> | 2024-07-31 12:49:03 +0200 |
commit | 3accae06b12db57e7226c30db45740c2283c4edc (patch) | |
tree | f44255389d2426045711ec780bdbd799849f3af5 | |
parent | 01fa3466e15d70cbd1e4719843ae39eff07eb229 (diff) |
fix kyc config
-rw-r--r-- | src/testing/test_kyc_api.conf | 109 |
1 files changed, 101 insertions, 8 deletions
diff --git a/src/testing/test_kyc_api.conf b/src/testing/test_kyc_api.conf index bbbfc17c..f648c2fb 100644 --- a/src/testing/test_kyc_api.conf +++ b/src/testing/test_kyc_api.conf @@ -36,17 +36,14 @@ CURRENCY = EUR CONFIG = postgres:///talercheck [exchange] -AML_THRESHOLD = EUR:1000000 PORT = 8081 MASTER_PUBLIC_KEY = NKX42KSCQHDQK7CF1PC6X9DMQPXW6KHXKGD3DPQJMP32FKXSWYK0 BASE_URL = "http://localhost:8081/" STEFAN_ABS = "EUR:5" [kyc-provider-test-oauth2] -COST = 0 LOGIC = oauth2 -USER_TYPE = BUSINESS -PROVIDED_CHECKS = DUMMY +CONVERTER = taler-exchange-helper-converter-oauth2-address KYC_OAUTH2_VALIDITY = forever KYC_OAUTH2_TOKEN_URL = http://localhost:6666/oauth/v2/token KYC_OAUTH2_AUTHORIZE_URL = http://localhost:6666/oauth/v2/login @@ -56,22 +53,118 @@ KYC_OAUTH2_CLIENT_SECRET = exchange-secret KYC_OAUTH2_POST_URL = http://example.com/ KYC_OAUTH2_CONVERTER_HELPER = taler-exchange-kyc-oauth2-test-converter.sh -[kyc-legitimization-deposit-any] +[kyc-check-oauth-test-id] +VOLUNTARY = NO +# We use an external provider +TYPE = LINK +DESCRIPTION = "Oauth2 dummy authentication" +DESCRIPTION_I18N = {} +# No context requirements +REQUIRES = +# Measure to execute if check failed. +FALLBACK = manual-freeze +# This check runs on oauth2 +PROVIDER_ID = test-oauth2 +# Outputs from this check +OUTPUTS = full_name birthdate + +# This is the "default" setting for an account if +# it has not yet triggered anything. +[kyc-check-default] +VOLUNTARY = NO +TYPE = INFO +DESCRIPTION = "Your account is operating normally" +DESCRIPTION_I18N = {} +# No context requirements +REQUIRES = +# Measure to execute if check failed. Well, +# this check cannot really fail, but the +# conservative answer is to freeze. +FALLBACK = manual-freeze + +# If this "check" is triggered, we merely inform +# the user that their account has been frozen. The +# user cannot proceed manually. +[kyc-check-info-frozen] +VOLUNTARY = NO +TYPE = INFO +DESCRIPTION = "Your account is frozen pending investigation" +DESCRIPTION_I18N = {} +# No context requirements +REQUIRES = +# Measure to execute if check failed. Well, +# this check cannot really fail, but we stay +# where we are: frozen. +FALLBACK = manual-freeze + +# If this "check" is triggered, we merely inform +# the user that we got their oauth-test data on file. +[kyc-check-info-oauth-test-passed] +VOLUNTARY = NO +TYPE = INFO +DESCRIPTION = "You passed the OAuth2 check. Thank you." +DESCRIPTION_I18N = {} +# No context requirements +REQUIRES = +# Measure to execute if check failed. Well, +# this check cannot really fail, but we stay +# where we are: frozen. +FALLBACK = manual-freeze + +[aml-program-oauth-output-check] +DESCRIPTION = "Validates the output from OAauth2 and then increases all limits to EUR:1000" +# Command that runs on the output of the OAuth provider +# to decide what rules should apply next. +COMMAND = taler-exchange-helper-measure-test-oauth +# What measure to take if the COMMAND failed. +FALLBACK = manual-freeze + +[kyc-measure-run-oauth] +# Get client ID via the OAuth test provider +CHECK_NAME = oauth-test-id +# AML program to run on the output of the OAuth provider +# to decide what rules should apply next. +PROGRAM = oauth-output-check +# Context to provide for check and program; empty. +CONTEXT = {} + +# This is a base-measure that is being triggered +# whenever something goes wrong. We freeze the +# account and ask AML staff to investigate. +[kyc-measure-manual-freeze] +CHECK_NAME = skip +# AML program that freezes the account and flags +# it for investigation. +PROGRAM = taler-exchange-helper-measure-freeze +# Context to provide for check and program; empty. +CONTEXT = {} + +[kyc-rule-deposit-any] +ENABLED = YES +EXPOSED = YES +IS_AND_COMBINATOR = YES OPERATION_TYPE = DEPOSIT -REQUIRED_CHECKS = DUMMY +NEXT_MEASURES = run-oauth THRESHOLD = EUR:0 TIMEFRAME = 1d [kyc-legitimization-withdraw] +ENABLED = YES +EXPOSED = YES +IS_AND_COMBINATOR = YES OPERATION_TYPE = WITHDRAW -REQUIRED_CHECKS = DUMMY +NEXT_MEASURES = run-oauth THRESHOLD = EUR:20 TIMEFRAME = 30d [kyc-legitimization-balance-high] +ENABLED = YES +EXPOSED = YES +IS_AND_COMBINATOR = YES OPERATION_TYPE = BALANCE -REQUIRED_CHECKS = DUMMY +NEXT_MEASURES = run-oauth THRESHOLD = EUR:1 +TIMEFRAME = 1d [exchangedb-postgres] CONFIG = "postgres:///talercheck" |